A comprehensive all-in-one security application combining password strength checking, password management, and secure note storage with enterprise-grade encryption.
- Real-time password analysis
- Strength scoring (0-100)
- Detailed feedback and suggestions
- Automatic strong password generation
- Common password detection
- AES-256-GCM encryption
- Secure password storage
- Category organization
- Search and filter capabilities
- Auto-fill integration ready
- Encrypted note storage
- Category and tag organization
- Rich text support
- Search functionality
- Export/import capabilities
- AES-256-GCM: Authenticated encryption for data
- PBKDF2: Key derivation with 100,000 iterations
- Secure random salt generation
- HMAC verification for data integrity
- Master password protection
- Rate limiting (3 attempts, 5-minute lockout)
- Session timeout (30 minutes)
- Optional biometric authentication
- Two-factor authentication support
- Local storage only (no cloud dependency)
- Secure memory handling
- Audit logging
- Backup and recovery options
- Install Python 3.8+
- Install dependencies:
pip install -r requirements.txt- Run the application:
python nexium_gui.py- Open
index.htmlin a modern web browser - No additional installation required
- Works offline with local storage
- Launch the application
- Create a strong master password
- Optionally enable two-factor authentication
- Start adding passwords and notes
- Click "Password Manager" tab
- Fill in the form with site details
- Use the password generator for strong passwords
- Save and organize with categories
- Click "Secure Notes" tab
- Create titled notes with rich content
- Organize with categories and tags
- All content is automatically encrypted
- Use at least 12 characters
- Include uppercase, lowercase, numbers, and symbols
- Avoid common words or patterns
- Don't reuse from other services
- Regularly export encrypted backups
- Store backups in secure locations
- Test recovery procedures
- Keep backup codes for 2FA
- Keep your OS updated
- Use antivirus software
- Enable firewall protection
- Regular security scans
User Data β PBKDF2 Key Derivation β AES-256-GCM Encryption β Secure Storage
- Desktop: SQLite database with encrypted fields
- Web: Browser localStorage with encrypted data
- Backup: Encrypted JSON export format
- Master password never stored in plain text
- Keys derived on-demand from master password
- Automatic key rotation capabilities
- Secure key deletion on logout
nexium-project/
βββ crypto_manager.py # Core encryption functions
βββ password_checker.py # Password analysis
βββ data_manager.py # Database operations
βββ nexium_gui.py # Desktop GUI
βββ security_features.py # Advanced security
βββ index.html # Web interface
βββ styles.css # Web styling
βββ app.js # Web application logic
βββ crypto-manager.js # Web encryption
βββ requirements.txt # Python dependencies
- Fork the repository
- Create feature branch
- Implement with security review
- Add tests and documentation
- Submit pull request
- Local attacks: Malware, physical access
- Data breaches: Database compromise
- Password attacks: Brute force, dictionary
- Social engineering: Phishing, pretexting
- Strong encryption at rest
- Rate limiting and lockouts
- Secure coding practices
- Regular security audits
- User education and warnings
This project is licensed under the MIT License - see the LICENSE file for details.
For support, feature requests, or security reports:
- Email: Coming Soon
- Support https://discord.gg/zcNRGBMS83
- Password strength checker
- Basic password manager
- Secure notes functionality
- AES-256 encryption
- Desktop and web versions
- Mobile applications
- Browser extensions
- Cloud sync (optional)
- Advanced 2FA methods
- Enterprise features